Sign in to follow this  
Followers 0
JRSmile

Reflective DLL Injection

11 posts in this topic

#1 ·  Posted (edited)

This post is reserved for my new project of hooking functions of another process without the need of a dll.

wish me luck :-)

http://www.harmonysecurity.com/files/HS-P0...llInjection.pdf

http://www.harmonysecurity.com/files/Refle...ection_v1.0.zip

Edited by JRSmile

$a=StringSplit("547275737420796F757220546563686E6F6C75737421","")For $b=1 To UBound($a)+(-1*-1*-1)step(2^4/8);&$b+=1*2/40*µ&Asc(4)Assign("c",Eval("c")&Chr(Dec($a[$b]&$a[$b+1])))''Chr("a")&"HI"Next;time_U&r34d,ths,U-may=get$the&c.l.u.e;b3st-regards,JRSmile;MsgBox(0x000000,"",Eval("c"));PiEs:d0nt+*b3.s4d.4ft3r.1st-try:-)

Share this post


Link to post
Share on other sites



#2 ·  Posted (edited)

Is this a similar technique as it is used in Embedded DLLs?

Edited by ProgAndy

*GERMAN* [note: you are not allowed to remove author / modified info from my UDFs]My UDFs:[_SetImageBinaryToCtrl] [_TaskDialog] [AutoItObject] [Animated GIF (GDI+)] [ClipPut for Image] [FreeImage] [GDI32 UDFs] [GDIPlus Progressbar] [Hotkey-Selector] [Multiline Inputbox] [MySQL without ODBC] [RichEdit UDFs] [SpeechAPI Example] [WinHTTP]UDFs included in AutoIt: FTP_Ex (as FTPEx), _WinAPI_SetLayeredWindowAttributes

Share this post


Link to post
Share on other sites

sounds interesting good luck :)

Share this post


Link to post
Share on other sites

Sounds interesting. However, reading the PDF makes me think of malware?

WBD

Share this post


Link to post
Share on other sites

Sounds interesting. However, reading the PDF makes me think of malware?

WBD

Or hacking applications/games.

Share this post


Link to post
Share on other sites

Or hacking applications/games.

of course it is some kind of hacking, but there is also a lot of potential to extend existing applications, which is indeet done by "hacking" :-)


$a=StringSplit("547275737420796F757220546563686E6F6C75737421","")For $b=1 To UBound($a)+(-1*-1*-1)step(2^4/8);&$b+=1*2/40*µ&Asc(4)Assign("c",Eval("c")&Chr(Dec($a[$b]&$a[$b+1])))''Chr("a")&"HI"Next;time_U&r34d,ths,U-may=get$the&c.l.u.e;b3st-regards,JRSmile;MsgBox(0x000000,"",Eval("c"));PiEs:d0nt+*b3.s4d.4ft3r.1st-try:-)

Share this post


Link to post
Share on other sites

When are we going to see some code?


♡♡♡

.

eMyvnE

Share this post


Link to post
Share on other sites

i think it will take some weeks :-(


$a=StringSplit("547275737420796F757220546563686E6F6C75737421","")For $b=1 To UBound($a)+(-1*-1*-1)step(2^4/8);&$b+=1*2/40*µ&Asc(4)Assign("c",Eval("c")&Chr(Dec($a[$b]&$a[$b+1])))''Chr("a")&"HI"Next;time_U&r34d,ths,U-may=get$the&c.l.u.e;b3st-regards,JRSmile;MsgBox(0x000000,"",Eval("c"));PiEs:d0nt+*b3.s4d.4ft3r.1st-try:-)

Share this post


Link to post
Share on other sites

i think it will take some weeks :-(

Don't drop this project. I would really like to see what you can do with this.


[left][sub]We're trapped in the belly of this horrible machine.[/sub][sup]And the machine is bleeding to death...[/sup][sup][/sup][/left]

Share this post


Link to post
Share on other sites

i think it will take some weeks :-(

This post is reserved for my future needs.

...unless forum rules are changed and editing option is limited on, for example, few hours. :)


♡♡♡

.

eMyvnE

Share this post


Link to post
Share on other sites

This post is reserved for my future needs.

...unless forum rules are changed and editing option is limited on, for example, few hours. :)

I'm going to keep an eye on the previous post, but it might depend on what later posts say.


Serial port communications UDF Includes functions for binary transmission and reception.printing UDF Useful for graphs, forms, labels, reports etc.Add User Call Tips to SciTE for functions in UDFs not included with AutoIt and for your own scripts.Functions with parameters in OnEvent mode and for Hot Keys One function replaces GuiSetOnEvent, GuiCtrlSetOnEvent and HotKeySet.UDF IsConnected2 for notification of status of connected state of many urls or IPs, without slowing the script.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0